Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/JtF2hk7n5RXX4HZ7cVcmanV0PFM.roa
File: JtF2hk7n5RXX4HZ7cVcmanV0PFM.roa (raw, json)
Hash identifier: aR67TmhOeaCW8TlMIjHOvWo/3i5/QDXbPdSbuqPUaiE=
Subject key identifier: 26:D1:76:86:4E:E7:E5:15:D7:E0:76:7B:71:57:26:6A:75:74:3C:53
Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Certificate serial: 018B20E589BD78D2A6839E18E6D7425B6C93
Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/JtF2hk7n5RXX4HZ7cVcmanV0PFM.roa
Signing time: Wed 11 Oct 2023 22:39:55 +0000
ROA not before: Wed 11 Oct 2023 22:39:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216176
IP address blocks: 2a14::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 14 Oct 2023 09:18:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:e5:89:bd:78:d2:a6:83:9e:18:e6:d7:42:5b:6c:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Validity
Not Before: Oct 11 22:39:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26d176864ee7e515d7e0767b7157266a75743c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:5b:47:df:b8:e7:d8:15:55:2c:13:86:ac:
68:bf:d8:e6:f4:b3:11:2c:52:74:3b:39:b2:34:ba:
6f:f6:60:df:ed:2b:0a:d9:34:d5:d9:75:6c:09:42:
74:5e:09:5f:de:62:e8:a5:77:59:22:d8:48:ac:1f:
b5:30:ef:e4:6b:a2:2c:9b:c5:4a:10:ed:98:a3:b0:
85:84:25:48:09:23:10:a3:75:0c:39:5c:52:1b:60:
28:12:8c:15:46:9b:59:d5:7c:f2:28:ab:7b:d3:2b:
d3:a4:61:b3:e7:4e:c6:e3:b9:9e:55:63:b9:26:28:
48:ba:61:79:71:2c:34:cf:d6:aa:38:fd:a2:be:93:
b6:48:dc:73:15:fe:23:6f:2c:cc:43:c7:5a:e5:6c:
ae:2a:d2:b6:73:38:98:1b:d5:e7:07:63:3e:17:55:
72:ca:53:77:30:aa:6b:e5:a3:fe:2d:af:bd:24:de:
ab:61:da:0f:ba:34:0f:c5:fa:78:84:65:c4:de:31:
b2:c7:c8:cd:fc:a4:39:57:05:a2:53:56:70:a2:0e:
93:5b:6e:a8:ff:d8:ce:a2:97:17:e1:08:57:3e:8a:
9b:4c:65:39:92:79:3a:26:ea:0d:ef:96:3c:db:eb:
86:db:7a:16:70:45:43:2d:de:f3:fa:92:33:e7:43:
2a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D1:76:86:4E:E7:E5:15:D7:E0:76:7B:71:57:26:6A:75:74:3C:53
X509v3 Authority Key Identifier:
keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/JtF2hk7n5RXX4HZ7cVcmanV0PFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14::/32
Signature Algorithm: sha256WithRSAEncryption
b1:34:14:77:fe:5f:66:4e:25:ce:c5:2c:08:91:5f:c3:14:2b:
71:78:3f:f3:27:09:55:bb:de:71:99:29:a8:c6:4a:72:70:c3:
06:59:af:30:82:16:a9:95:0f:b0:28:a5:7b:19:43:8b:41:02:
aa:99:d3:5f:f6:58:0b:fc:04:54:97:0e:aa:36:4a:ff:b0:9f:
04:df:93:55:29:18:eb:1b:cf:ba:5b:2f:7f:7f:7d:ff:2b:e8:
d8:6a:f8:2a:ea:55:85:16:f5:0b:2e:3d:34:29:68:55:81:3e:
13:c5:a7:1f:e6:09:91:61:04:c7:b2:96:c4:65:15:e8:d1:fa:
66:75:ac:51:5c:b1:44:c4:a0:fa:44:e3:79:6a:fe:b9:6a:51:
21:ff:f3:04:ec:56:0d:22:41:05:9e:57:37:db:ff:86:e8:55:
ac:b3:93:9d:2c:10:42:d8:95:99:e7:11:21:8e:b3:93:1f:11:
9d:fd:f7:1c:dd:2f:0a:cd:e3:7c:c5:6c:79:cd:7b:97:78:c0:
99:28:b0:9d:92:8b:d0:d9:38:44:e4:7a:eb:8f:64:da:5d:7b:
68:54:14:1e:fa:f9:77:fe:ac:7a:5e:5b:f5:2c:d0:7d:2f:bb:
fc:65:6c:1a:c2:9a:4f:ed:88:6a:bc:44:c8:d7:68:b4:ac:ce:
68:f9:ab:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org